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- The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C, § 133). 

- Any reply received by the Office later than three months after the mailing date of this communication, even If timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )KI Responsive to Gonnnnunication(s) filed on 21 October 1999 , 
2a)n This action is FINAL. 2b)S This action is non-final. 

3) n Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-63 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 0 Claim(s) is/are allowed. 

6) K Claim(s) 1-63 is/are rejected. 

Claim(s) is/are objected to. 

8) n Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) n The specification is objected to by the~Examiner, 

10)0 The drawing(s) filed on is/are: a)n accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) Including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
1 1 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-1 52. 
Priority under 35 U.S.C. §§ 119 and 120 

12) n Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 

a)nAII b)n Some*c)n None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

13) 0 Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 1 19(e) (to a provisional application) 

since a specific reference was included in the first sentence of the specification or in an Application Data Sheet. 
37 CFR 1.78. 

a) D The translation of the foreign language provisional application has been received. 

14) 0 Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 120 and/or 121 since a specific 

reference was included in the first sentence of the specification or in an Application Data Sheet. 37 CFR 1 .78. 
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DETAILED ACTION 



This office action is in response to Applicants' application serial no. 09/422,430 filed on 



10/21/1999. 



Specification 



2. The disclosure is objected to because it contains an embedded hyperlink and/or other 
form of browser-executable code. Applicant is required to delete the embedded hyperlink and/or 
other form of browser-executable code. See MPEP § 608.01. 



3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject 
matter sought to be patented and the prior art are such that the subject matter as a whole 
would have been obvious at the time the invention was made to a person having ordinary 
skill in the art to which said subject matter pertains. Patentability shall not be negatived 
by the manner in which the invention was made. 

4. Claims 1-12, 14-15, 19-33, 35-36, 40-44, 56-57 and 61-63 are rejected under 35 U.S.C. 
103(a) as being unpatentable over Hind et al. (U.S. Patent No. 6,585,778 hereinafter Hind) in 
view of Gennaro et al. (U.S. Patent No. 5,937,066 hereinafter Gennaro) and Schneck et al. (U.S. 
Patent No. 5,933,498). 

In respect to claim 1, Hind discloses a computer program product embodied on computer 
readable media readable by a computing system in a computing environment, for enforcing 
security policy using style sheet processing, comprising: 



Claim Rejections - 35 USC §103 



an input document (see col, 4, lines 16-18); 
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one or more stored policy enforcement objects, wherein each of said stored poHcy 
enforcement objects specifies a security policy to be associated with zero or more elements of 
said input document (see col. 4, lines 1-4 and lines 11 -32); 

a Document Type Definition (DTD) corresponding to said input document, wherein said 
DTD has been augmented with one or more references to selected ones of said stored policy 
enforcement objects (see 4, lines 16-23); 

an augmented style sheet processor, wherein said augmented processor further comprises: 

computer-readable program code means for loading said DTD (see col. 4, lines 25); 

computer-readable program code means for resolving each of said one or more references 
in said loaded DTD (see col. 4, lines 25-26); 

computer-readable program code means for instantiating said policy enforcement 

objects associated with said resolved references (see col. 4, lines 26-28); 

computer-readable program code means for executing selected ones of said instantiated 
poUcy enforcement objects during application of one or more style sheets to said input 
document, wherein a result of said computer-readable program code means for executing is an 
interim transient document reflecting said execution (see col. 4, lines 28-3 1); 

Hind does not disclose but Gennaro discloses a computer-readable program code means 
for generating one or more random encryption keys; and computer-readable program code means 
for encrypting each of said one or more random encryption keys (see col. 7, lines 52-67 and col. 
8, lines 44-54). It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the Hind's teaching of enforcing data policy using style sheet 
processing with security feature of using random encryption keys and encrypting the encryption 
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key taught by Geimaro for better protecting transmitted document by avoiding the disadvantage 
of key sharing and to keep the encryption key safe by encrypting the encryption key (see Hind, 
col. 8, Hnes 44-45). 

Furthermore, Hind does not disclose but Schneck discloses a computer-readable program 
code means for encrypting selected elements of said interim transient document, wherein a 
particular one of said generated random encryption keys may be used to encrypt one or more of 
said selected elements, v^hile leaving zero or more other elements of said interim transient 
document unencrypted (see Fig. 1 and 2, col 9, lines 38-59 and col. 10, lines 34-42). It would 
have been obvious to one of ordinary skill in the art at the time the invention was made to 
combine Hind's teaching of enforcing data policy using style sheet processing with the partial 
encryption features taught by Schneck in order to enable the user to access the data in various 
controlled ways depending on access rules (see Schneck, col. 9, lines 55-59). 

Hind does not disclose but Schneck discloses creating an encrypted output document 
comprising said zero or more unencrypted elements, said selected encrypted elements, and said 
encrypted encryption keys (see Fig. 2, 4 and 6, col. 12, lines 17-26 and col. 13, lines 36-50); 
receiving said encrypted output document and decrypting said received output document for an 
individual user on said client device and rendering said result document on said client device 
(see col. 5, lines 17-26); Therefore, It would have been obvious to one of ordinary skill in the art 
at the time the invention was made to combine Hind's teaching of enforcing data policy using 
style sheet processing with packaged data that includes encrypted body part, unencrypted body 
and other encrypted information and transmitted encrypted document and rendering result at the 
client device taught by Schneck for better protection and tamper resistant to the transmitted 



• # 
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document and the secure of having the document renders at the client's device instead of 
transmitting it clear over the network. 

In respect to claim 2, Hind, Gennaro and Schneck disclose the computer program product 
according to Claim 1, wherein said interim transient document comprises one or more encryption 
tags identifying elements needing encryption (see Schneck, col. 7, lines 37-39) . 

In respect to claim 3, Hind, Gennaro and Schneck disclose the computer program product 
according to Claim 1, wherein said input document is specified in an Extensible Markup 
Language (XML) notation (see Hind, col. 7, lines 19-50). 

In respect to claim 4, Hind, Gennaro and Schneck disclose the computer program product 
according to Claim 3, wherein said result document is specified in said XML notation (see Hind, 
col. 7, lines 19-50). 

In respect to claim 5, Hind, Gennaro and Schneck disclose the computer program product 
according to Claim 1, wherein said stored policy enforcement objects fiirther comprise 
computer-readable program code means for overriding a method for evaluating said elements of 
said input document, and wherein said computer-readable program code means for executing 
fiirther comprises computer-readable program code means for executing said computer-readable 
program code means for overriding (see Hind, col. 4, lines 38-42). 

In respect to claim 6, Hind, Germaro and Schneck disclose the computer program product 
according to Claim 5, wherein said style sheets are specified in an Extensible Stylesheet 
Language (XSL) notation (see Hind, col, 4, lines 43-44). 

In respect to claim 7, Hind, Gennaro and Schneck disclose the computer program product 
according to Claim 6, wherein said method is a value-of method of said XSL notation, and 
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wherein said computer-readable program code means for overriding said value-of method is by 
subclassing said value-of method (see Hind, col. 4, lines 43-49). 

In respect to claim 8, Hind, Germaro and Schneck disclose the computer program product 
according to Claim 5 or Claim 7, wherein said overridden method comprises: 
computer-readable program code means for generating encryption tags (see Schneck, col. 12, 
lines 27-50); and computer-readable program code means for inserting said generated encryption 
tags into said interim transient document to surround elements of said interim transient document 
which are determined to require encryption; and said computer-readable program code means for 
encrypting selected elements encrypts those elements surrounded by said inserted encryption 
tags (see Schneck, Fig. 2 and 6, col. 7, lines 35-39, col. 13, lines 37-50), 

In respect to claim 9, Hind, Gennaro and Schneck disclose the computer program product 
according to Claim 1, wherein each of said instantiated policy enforcement objects further 
comprises: 

a specification of a community that is authorized to view said elements associated with 
said security policy; and an encryption requirement for said elements associated with said 
security policy (see Schneck, col. 23, line 56-col. 24, line 4). 

In respect to claim 10, Hind, Germaro and Schneck disclose the computer program 
product according to Claim 9, wherein said encryption requirement further comprises 
specification of an encryption algorithm (see Schneck, col 12, lines 17-26). 

In respect to claim 11, Hind, Germaro and Schneck disclose the computer program 
product according to Claim 9, wherein said encryption requirement further comprises 
specification of an encryption algorithm strength value (see Schneck, col. 12, lines 27-41). 
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In respect to claim 13, Hind, Gennaro and Schneck disclose the computer program 
product according to Claim 9, wherein said encryption requirement may have a null value to 
indicate that said specified security policy does not require encryption (see Schneck, Fig. 2, col. 
7, lines 35-40). 

In respect to claim 14, Hind, Gennaro and Schneck disclose the computer program 
product according to Claim 1, wherein said computer-readable program code means for 
encrypting selected elements uses a cipher block chaining mode encryption process (see 
Gennaro, col. 1, lines 19-25). 

In respect to claim 19, Hind, Gennaro and Schneck disclose the computer program 
product according to claim 1, wherein said DTD is replaced by a schema (see col. 8, Hnes 8-20, 
"an XML schema specifies constraint on the structures and types of elements in an XML 
document. The basic schema for XML is DTD"). 

In respect to claim 20, Hind, Gennaro and Schneck discloses the computer program 
product according to Claim 10, wherein said encryption requirement fiirther comprises 
specification of an encryption key length (see Gennaro, col. 30, lines 41-51, maximum key 
length). 

In respect to claim 21, Hind, Gennaro and Schneck disclose the computer program 
product according to Claim 9, wherein said inserted encryption tags may surround either values 
of said elements or values and tags of said elements (see Schneck, Fig. 2 and 6, col. 13, lines 37- 



In respect to claim 22, the claim limitation is a system claim which is substantially 
similar to the computer program product of claim 1 and therefore the same rejection applied. 



50). 
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In respect to claim 43, the claim limitation is a method claim which is substantially 
similar to the computer program product of claim 1 and therefore the same rejection applied. 

hi respect to claims 23-32, 34-35 and 40-42, the claim limitation is a system claim which 
is substantially similar to the computer program product claims 2-11, 13-14, 19-21 and therefore 
the same rejection appUed. 

In respect to claims 44-53, 55-56 and 61-63, the claim limitation is a method claim which 
is substantially similar to the computer program product claims 2-11,13-14 and 19-21 and 
therefore the same rejection applied. 

5. Claim 12, 15-18, 33, 36-39, 54 and 57-60 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Hind et al. (U.S. Patent No. 6,585,778 hereinafter Hind) in view of Gennaro et 
al. (U.S. Patent No. 5,937,066 hereinafter Gennaro) and Schneck et al. (U.S. Patent No. 
5,933,498) and fiirther in view of Carter (U.S. Patent No. 5,787,175), 

In respect to claim 12, Hind, Geimaro and Schneck disclose a computer program product 
according to claim 9. Hind, Gennaro and Schneck do not disclose but Carter discloses a 
computer-readable program code means for encrypting a different version of each of said 
random encryption keys for each of said one or more members of each of zero or more of said 
communities which uses said encryption key, and wherein each of said different versions is 
encrypted using a public key of said community member for which said different version was 
encrypted (see col. 1, lines 5-14 and col. 8, lines 51-60 and col. 13, lines 63-67). 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to incorporate the teaching of Hind, Gennaro and Schneck with Carter by associating 
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different keys with different users authorized to access an encrypted document to prevent 
redistribution of new keys when a member of a group leave the group (see Carter, col. 5, lines 5- 
20). 

In respect to claim 15, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 12 further disclose said computer program product 
comprising: 

computer-readable program code means for creating a key class comprises: 
a strongest encryption requirement of associated encrypted element (see Schneck, col. 12, 
lines 27-65); 

generating said one or more random encryption keys generates a particular one of said random 
encryption keys for each of said key classes (see Gennaro, col. 8, lines 55-67); 

and 

each of said different versions in a particular key class is encrypted from said generated 
encryption key generated for said key class (see Gennaro, col. 8, lines 55-67); and 

encrypting selected elements uses that one of said particular random encryption keys 
which was generated for said key class with which said selected element is associated (see col. 
Schneck, col. 7, lines 35-45). 

for each unique community, wherein said key class is associated with each of said 
encrypted elements for which this unique community is an authorized viewer (see Carter, col. 1, 
lines 1-14); 

an identifier of each of said members of said unique community (see Carter, col. 8, lines 

51-60); 
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and one of said different versions of said encrypted encryption key for each of said 
identified community members (see Carter, col. 1, lines 5-14 and col. 8, lines 51-60). 

In respect to claim 16, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to claim 12, wherein Said computer-readable program code means 
for decrypting said output document further comprises: 

Computer-readable program code means for determining zero or more of said 
communities of which said individual user or process is one of said members (see Carter, col. 1, 
lines 5-14); 

Computer-readable program code means for decrypting, for each of said determined 
communities, said different version of said random encryption key which was encrypted using 
said public key of said one member, wherein said computer-readable program code means for 
decrypting uses a private key of said one member which is associated with said public key which 
was used for encryption, thereby creating a decrypted key (see Carter, col. 13, lines 63-67); and 

Computer-readable program code means for decrypting selected ones of said encrypted 
elements in said output document using said decrypted keys, wherein said selected ones of said 
encrypted elements are those which were encrypted for one of said determined communities; and 

Rendering said decrypted selected ones and said other unencrypted elements (see 
Schneck, Fig. 2 and 6, col. 5, lines 17-26 , col. 13, lines 37-50 and col. 18, lines 44-61). 

In respect to claim 17, Hind, Geimaro, Schneck and Carter disclose the computer 
program product according to Claim 15, wherein said computer-readable program code means 
for decrypting said output document further comprises: 
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Computer-readable program code means for determining zero or more of said key classes 
which identify said individual user or process as one of said members (see Carter, col 1, lines 5- 



Computer-readable program code means for decrypting, for each of said determined key 
classes, said different version of said random encryption key in said key class which was 
encrypted using said public key of said one member, wherein said computer-readable program 
code means for decrypting uses a private key of said one member which is associated with said 
public key which was used for encryption, thereby creating a decrypted key (see Carter, col. 13, 
lines 63-67); and 

Computer-readable program code means for decrypting selected ones of said encrypted 
elements in said output document using said decrypted keys, wherein said selected ones of said 
encrypted elements are those which were encrypted for said key class; and rendering said 
decrypted ones and said other unencrypted elements (see Schneck, Fig. 2 and 6, col. 5, lines 17- 
26 , col. 13, lines 37-50 and col. 18, lines 44-61). 

In respect to claim 18, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to claim 16 or 17, wherein said computer-readable program code 
means for rendering further comprises computer-readable program code means for rendering a 
substitute text message for any of said selected encrypted elements in said output document 
which cannot be decrypted by said computer-readable program code means for decrypting said 
output document (see Hind, col. 3. lines 60-65). 



14); 
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In respect to claims 33, 36-39, the claim limitation is a system claim which is 
substantially similar to the computer program product claims 12, 15-18 and therefore the same 
rejection applied. 

In respect to claims 54, 57-60, the claim limitation is a method claim which is substantially 
similar to the computer program product claims 12, 15-18 and therefore the same rejection 
applied. 



6. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

-Hind et al. Disclose a retrieval of style sheets from directories based upon partial 
characteristic matching. 

-Ciacelli et al. Disclose an apparatus, method and computer program product for 
protecting copyright data within a computer system. 

-Kuroda discloses a security level control apparatus and method for a network securing 
communications between parties without presetting the security level. 

-Moshfeghi discloses a method and apparatus for controlling browser functionality in the 
context of an application. 

-Chen et al. Disclose a dynamic business process automation system using XML 
documents. 

-Pebley et al. Disclose a system and method for transferring encrypted sections of 
documents across a computer network. 



Conclusion 



# 
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-Kramer et al. Discloses a hierarchical model of consumer attributes for targeting content 
in a privacy-reserving maimer. 

-Hyman et al. Disclose extension of parsable structures. 

-Bailey et al. Disclose method for versioning a UML model in a repository in accordance 
with an updated XML representation of the UML model. 

-Roberts et al. Discloses a method for creating netv^ork services by transforming an XML 
runtime model in response to an iterative input process. 

-Livingston et al. disclose a system for presenting and managing enterprise architectures. 

-Danieli discloses a security services and policy enforcement for electronic data. 

Gutov^itz discloses a method and apparatus for encryption decryption and authentication 
using dynamical systems. 

-Kluttz et al. Disclose a methods, systems and computer program products for multi-level 
encryption. 

RuckUdge et al. disclose a methods and apparatus for partial encryption of tokenized 
documents. 

-Boag et al. Disclose a dynamically determining the most appropriate location for style 
sheet application. 

7. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tongoc Iran whose telephone number is (703) 305-7690. The 
examiner can normally be reached on 8:30-5:00 M-F. 



Application/Control Number: 09/422,430 



Page 14 



Art Unit: 2134 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory A. Morse can be reached on (703) 308-4789. The fax phone number for the 
organization where this application or proceeding is assigned is (703) 746-7240. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703)305-9600. 



Examiner Tongoc Tran 
Art Unit: 2134 



TT 

December 12, 2003 
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